1. Web Security Academy
  2. Web cache poisoning
  3. Exploiting
  4. Lab

Lab: Web cache poisoning to exploit a DOM vulnerability via a cache with strict cacheability criteria

EXPERT

This lab contains a DOM-based vulnerability that can be exploited as part of a web cache poisoning attack. A user visits the home page roughly once a minute. Note that the cache used by this lab has stricter criteria for deciding which responses are cacheable, so you will need to study the cache behavior closely.

To solve the lab, poison the cache with a response that executes alert(document.cookie) in the visitor's browser.

Try Burp Suite for Free

Find web cache poisoning vulnerabilities using Burp Suite

Try for free